![]() “Equifax failed to take basic steps that may have prevented the breach that affected approximately 147 million consumers.”Įquifax had already been fined £500,000 in the UK for the 2017 breach, which was the maximum fine allowed under the pre-GDPR Data Protection Act 1998. “Companies that profit from personal information have an extra responsibility to protect and secure that data,” said FTC Chairman Joe Simons. ![]() The settlement also requires the company to obtain third-party assessments of its information security program every two years. $300 million of that will go to a fund providing affected consumers with credit monitoring services (another $125 million will be added if the initial payment is not enough to compensate consumers), $175 million will go to 48 states, the District of Columbia and Puerto Rico, and $100 million will go to the CFPB. states and territories over the company’s "failure to take reasonable steps to secure its network." ![]() In July 2019 the credit agency agreed to pay $575 million - potentially rising to $700 million - in a settlement with the Federal Trade Commission, the Consumer Financial Protection Bureau (CFPB), and all 50 U.S. The company had failed to fix a critical vulnerability months after a patch had been issued and then failed to inform the public of the breach for weeks after it been discovered. Equifax: (At least) $575 MillionĢ017 saw Equifax lose the personal and financial information of nearly 150 million people due to an unpatched Apache Struts framework in one of its databases. Amazon is said to be appealing the fine, with a spokesperson stating, “There has been no data breach, and no customer data has been exposed to any third party.” 3. According to a blog post by cybersecurity vendor Tessian, the full reasons behind the fine haven’t yet been confirmed, but it is believed to involve cookie consent. In summer 2021, retail giant Amazon’s financial records revealed that officials in Luxembourg issued a €746 million ($877 million) for breaches of the GDPR. In a statement, Didi Global said it accepted the cybersecurity regulators' decision, which came after a year-long investigation into the firm over its security practices and “suspected illegal activities.” 2. Chinese ride-hailing firm Didi Global was fined 8.026 billion yuan ($1.19 billion) by the Cyberspace Administration of China after it decided that the company violated the nations’ network security law, data security law, and personal information protection law.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |